generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

tolerate broken CMS/PKCS7 implementations using signature OID instead of digest

Browse Source
This commit is contained in:
Dr. Stephen Henson 2010-02-02 14:30:39 +00:00
parent 17ebc10ffa
commit 2712a2f625
1 changed files with 5 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
crypto/cms/cms_lib.c
View File

@ -406,7 +406,11 @@ int cms_DigestAlgorithm_find_ctx(EVP_MD_CTX *mctx, BIO *chain,
return 0;
}
BIO_get_md_ctx(chain, &mtmp);
if (EVP_MD_CTX_type(mtmp) == nid)
if (EVP_MD_CTX_type(mtmp) == nid
/* Workaround for broken implementations that use signature
* algorithm OID instead of digest.
*/
|| EVP_MD_pkey_type(EVP_MD_CTX_md(mtmp)) == nid)
return EVP_MD_CTX_copy_ex(mctx, mtmp);
chain = BIO_next(chain);
}